SOX Professional Group (community homepage)

Featured Post

Trending Threads

  • Back a couple of years ago, I went through a process to document each control across my company. For example, took a revenue control (cash receipts recorded to the GL are agreed to bank activity - just an example), and documented each step the control ...

  • Late to the party, but thought I'd share some of the best practices I've implemented. Typically, we like our external auditors (EA) to begin the procedures in May. That would be when they kick off walkthroughs and tests of design (TOD). The walkthroughs ...

  • A little late to the party, but wanted to provide my thoughts given my experience with Audit Committee needs. While the access for the user was appropriate, it was a breakdown of the control over a SOX system, which means that this is a SOX issue.  ...

  • We are a bank as well; I try my best to summarize the deficiencies to the Audit Committee.   I provide our SOX Committee with all of the details.  I provide the Audit Committee with a very high level summary of the "exceptions", issues we deemed not a ...

  • Thanks for the response.  To your point, in the example above, we expanded the sample to deem the issue isolated. Other examples would be (we're a bank) in regard to loan approvals.  The control is automated system routing for proper approval. The ...

Quick Links

Latest Blogs